Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/aNNXbFpVxUf3PB4NtsWJZR-np7k.roa
File: aNNXbFpVxUf3PB4NtsWJZR-np7k.roa (raw, json)
Hash identifier: rtFDOVRw6BjrmehJS9FICEl8bqgLm2a7m54Wvox00G4=
Subject key identifier: 68:D3:57:6C:5A:55:C5:47:F7:3C:1E:0D:B6:C5:89:65:1F:A7:A7:B9
Certificate issuer: /CN=73c69d04583500c5ef81136831237593e0bb86ce
Certificate serial: 0188A0E7CC0E9E537394C503CD28F8FE964D
Authority key identifier: 73:C6:9D:04:58:35:00:C5:EF:81:13:68:31:23:75:93:E0:BB:86:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c8adBFg1AMXvgRNoMSN1k-C7hs4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/aNNXbFpVxUf3PB4NtsWJZR-np7k.roa
Signing time: Fri 09 Jun 2023 16:05:25 +0000
ROA not before: Fri 09 Jun 2023 16:05:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212483
IP address blocks: 2a0d:2587::/33 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:a0:e7:cc:0e:9e:53:73:94:c5:03:cd:28:f8:fe:96:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73c69d04583500c5ef81136831237593e0bb86ce
Validity
Not Before: Jun 9 16:05:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=68d3576c5a55c547f73c1e0db6c589651fa7a7b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:2b:3f:ec:5e:68:8d:5f:3f:e4:46:a9:59:33:
cb:32:54:37:8e:04:16:64:dd:44:8d:26:6a:6f:bf:
df:6b:f4:9c:12:5c:24:13:0f:66:82:b6:3f:b2:74:
0c:90:b6:aa:e7:b0:f6:e8:fa:d1:88:6e:2f:5c:b5:
ba:22:7f:8e:c4:e9:10:f4:3a:80:1d:c1:bf:38:91:
89:9c:8d:c0:14:d8:1e:09:7a:43:54:81:e6:74:81:
4b:a7:f5:f5:24:4c:0c:2c:89:2d:66:76:09:67:ff:
dc:f9:b1:e2:cb:b4:b0:46:b9:f5:cb:ed:4d:ef:1d:
1a:88:db:06:fc:d6:24:e3:15:d0:ca:4e:52:df:ac:
cb:39:75:3a:42:6a:f1:cf:b6:13:e5:ed:97:b6:1f:
81:25:2e:85:54:dc:ed:cd:9f:5f:a4:e7:33:d5:3e:
b9:c9:78:a2:5d:0a:81:d4:36:9d:e3:d2:0b:c4:8a:
92:df:80:c0:5d:2e:4b:d4:c5:32:63:c4:f8:86:b8:
f8:ff:d4:20:4c:79:bc:ef:b7:fc:07:f6:da:14:56:
3a:e8:0f:1d:8d:24:98:53:4d:27:cd:61:9c:43:fd:
fe:5a:ca:a5:47:50:da:3f:21:b3:33:50:31:a7:c5:
d8:29:e0:1e:3f:62:60:37:3f:12:a7:0a:d1:d6:1f:
4c:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:D3:57:6C:5A:55:C5:47:F7:3C:1E:0D:B6:C5:89:65:1F:A7:A7:B9
X509v3 Authority Key Identifier:
keyid:73:C6:9D:04:58:35:00:C5:EF:81:13:68:31:23:75:93:E0:BB:86:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8adBFg1AMXvgRNoMSN1k-C7hs4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/aNNXbFpVxUf3PB4NtsWJZR-np7k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/c8adBFg1AMXvgRNoMSN1k-C7hs4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0d:2587::/33
Signature Algorithm: sha256WithRSAEncryption
4f:fd:97:9e:f4:aa:96:84:92:69:c6:b4:05:70:e4:91:fe:aa:
d5:27:4b:0b:a1:50:55:02:d4:6f:9f:79:e1:62:9f:d5:d1:5d:
31:7f:37:d9:1a:38:ac:26:93:a0:65:21:c6:ff:d5:60:17:ee:
3b:b7:39:5d:91:bd:dc:5b:82:1c:a2:98:bf:a6:f1:ed:9e:01:
1c:db:8e:3b:47:1a:e9:d8:c8:81:21:e1:95:a6:1e:a9:4e:cb:
04:1f:bf:cc:52:8e:3c:45:6c:f3:3f:e9:48:13:d4:3a:ea:fa:
c3:ea:d1:a2:38:a6:64:75:22:e8:f2:02:91:ae:a7:1e:b5:05:
5f:e1:f0:1c:4d:1d:9e:3d:9c:02:1c:18:c9:7a:b0:4f:00:eb:
53:a2:d1:ac:26:b0:67:99:76:ae:53:8d:0c:00:4c:bb:c3:fe:
d0:6b:67:ef:76:15:03:11:51:96:cc:40:ac:bd:ee:5d:18:57:
93:53:b1:59:bf:88:fe:89:66:5c:07:12:4c:a4:f7:c0:d5:67:
da:eb:29:94:bf:60:b4:02:84:42:eb:b3:13:b9:07:7a:bb:29:
8e:60:09:2d:76:43:40:2c:54:bd:82:61:01:ec:8e:44:f5:d1:
74:6b:98:c9:ab:8f:2c:13:cb:29:d6:81:04:b0:f2:81:bd:65:
84:6c:23:32
-----BEGIN CERTIFICATE-----
MIIE/zCCA+egAwIBAgISAYig58wOnlNzlMUDzSj4/pZNMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDczYzY5ZDA0NTgzNTAwYzVlZjgxMTM2ODMxMjM3NTkzZTBi
Yjg2Y2UwHhcNMjMwNjA5MTYwNTI1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2OGQzNTc2YzVhNTVjNTQ3ZjczYzFlMGRiNmM1ODk2NTFmYTdhN2I5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvCs/7F5ojV8/5EapWTPLMlQ3jgQW
ZN1EjSZqb7/fa/ScElwkEw9mgrY/snQMkLaq57D26PrRiG4vXLW6In+OxOkQ9DqA
HcG/OJGJnI3AFNgeCXpDVIHmdIFLp/X1JEwMLIktZnYJZ//c+bHiy7SwRrn1y+1N
7x0aiNsG/NYk4xXQyk5S36zLOXU6Qmrxz7YT5e2Xth+BJS6FVNztzZ9fpOcz1T65
yXiiXQqB1Dad49ILxIqS34DAXS5L1MUyY8T4hrj4/9QgTHm877f8B/baFFY66A8d
jSSYU00nzWGcQ/3+WsqlR1DaPyGzM1Axp8XYKeAeP2JgNz8SpwrR1h9MawIDAQAB
o4ICCzCCAgcwHQYDVR0OBBYEFGjTV2xaVcVH9zweDbbFiWUfp6e5MB8GA1UdIwQY
MBaAFHPGnQRYNQDF74ETaDEjdZPgu4bOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYzhhZEJGZzFBTVh2Z1JOb01TTjFrLUM3aHM0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83OC82ZjZjZTItZTZlZS00ZTJhLTkwNWQt
ZjljYjBhN2IyMDZjLzEvYU5OWGJGcFZ4VWYzUEI0TnRzV0paUi1ucDdrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83OC82ZjZjZTItZTZlZS00ZTJhLTkwNWQtZjljYjBhN2IyMDZj
LzEvYzhhZEJGZzFBTVh2Z1JOb01TTjFrLUM3aHM0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYHKg0lhwAw
DQYJKoZIhvcNAQELBQADggEBAE/9l570qpaEkmnGtAVw5JH+qtUnSwuhUFUC1G+f
eeFin9XRXTF/N9kaOKwmk6BlIcb/1WAX7ju3OV2RvdxbghyimL+m8e2eARzbjjtH
GunYyIEh4ZWmHqlOywQfv8xSjjxFbPM/6UgT1Drq+sPq0aI4pmR1IujyApGupx61
BV/h8BxNHZ49nAIcGMl6sE8A61Oi0awmsGeZdq5TjQwATLvD/tBrZ+92FQMRUZbM
QKy97l0YV5NTsVm/iP6JZlwHEkyk98DVZ9rrKZS/YLQChELrsxO5B3q7KY5gCS12
Q0AsVL2CYQHsjkT10XRrmMmrjywTyynWgQSw8oG9ZYRsIzI=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:39 2024 by rpki-client on console-fra.rpki-client.org